$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/EE744ACAD55C11EAA224E026C4F9AE02.roa File: EE744ACAD55C11EAA224E026C4F9AE02.roa (raw, json) Hash identifier: Q48uJdRRBErvN0MaEglf3VQ+DumuMDNeFKgsuTsot38= Subject key identifier: C4:E6:2D:EB:B9:92:A6:75:CC:59:1D:9E:17:EC:F5:16:CB:1A:29:5A Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19D7 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/EE744ACAD55C11EAA224E026C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:50 +0000 ROA not before: Fri 20 Feb 2026 17:14:58 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 45186 IP address blocks: 49.255.255.0/24 maxlen: 24 2402:4600::/40 maxlen: 40 2407:5600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6615 (0x19d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:14:58 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a8a-1f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b6:00:73:eb:f2:24:11:ca:3a:3a:ed:57:45: bb:e7:6b:00:c5:02:e3:71:d0:c5:58:8d:c3:d2:0d: dd:78:5e:b6:e8:30:4a:6e:88:e0:9e:98:20:a9:46: 8c:12:85:78:6f:dd:c3:1c:ee:ef:73:bc:92:83:22: c4:14:f4:e4:06:49:20:1b:17:6a:a8:45:ef:26:95: 89:fd:a5:bd:fc:2c:30:d7:92:3a:88:31:2e:c1:72: c9:16:51:49:73:43:3c:8e:98:6d:53:e5:87:9b:b5: 81:ef:9b:f6:a4:98:71:37:1a:34:8c:a1:1a:28:e5: c9:1f:b8:ed:09:f3:87:a7:31:84:72:e1:5f:99:75: 88:5e:52:8e:f5:4c:c7:03:c2:ec:37:61:48:0b:75: 9f:47:c9:ad:38:dc:61:3f:e1:c7:df:d5:38:20:11: 0e:0e:a1:8b:61:a3:39:03:b8:8d:a4:1f:2e:27:c8: 2c:f3:3d:9f:b5:a5:7c:71:2f:1c:91:c6:b0:74:42: 1c:54:fa:fc:6c:7d:a5:17:07:bd:e0:b4:d7:f3:2e: 58:36:11:24:50:18:bf:c1:f2:24:53:68:13:90:59: e0:d7:05:6d:df:33:44:83:bd:86:e0:3f:1e:16:ac: 2e:30:6e:74:4d:a4:d5:2b:de:57:0e:2f:84:54:10: a1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:E6:2D:EB:B9:92:A6:75:CC:59:1D:9E:17:EC:F5:16:CB:1A:29:5A X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/EE744ACAD55C11EAA224E026C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.255.255.0/24 IPv6: 2402:4600::/40 2407:5600::/32 Signature Algorithm: sha256WithRSAEncryption 1c:e3:09:ba:8d:a2:57:42:c5:c3:e8:46:42:1f:d8:60:e7:12: 20:25:65:d6:86:99:e0:f9:b5:72:b8:32:dc:24:8e:c4:13:4b: ef:3c:9e:6c:06:4e:20:25:d6:0e:ea:3f:75:56:88:31:36:aa: b5:be:8c:2f:33:d4:f2:a6:b9:35:1e:e3:2a:53:6d:60:61:b0: cf:af:10:f2:54:9b:78:07:bc:ef:4b:23:72:d9:a0:4c:6e:4b: 16:fb:ef:d0:ce:48:06:0d:70:c9:0f:e8:c5:73:ee:a8:eb:8b: f6:a8:d7:e0:e6:b2:5a:7b:e9:5b:64:d2:2c:38:7c:a1:e1:89: ce:f8:66:07:cb:50:1c:5d:d9:43:52:4b:a7:a0:24:68:47:89: e6:e0:df:4a:99:a6:6b:2a:c0:91:41:50:df:92:08:fb:cf:dd: 7b:ce:41:c1:f0:e1:d9:92:b8:49:b7:b4:a2:0c:85:36:86:7c: d5:79:4d:f5:28:19:31:bb:51:29:78:67:01:69:a8:a9:c3:1a: 20:95:73:f3:81:f5:1e:0b:c2:78:ad:c5:14:21:95:66:f8:d3: 9e:49:c9:b2:e3:ed:1d:5b:37:b3:6a:c6:81:c4:ee:f5:af:45: f4:a0:d1:df:35:99:5c:5e:aa:da:a0:22:ba:ea:51:a2:dd:8e: 74:76:4f:5c -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICGdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNDU4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE4YS0xZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7YAc+vyJBHKOjrtV0W752sAxQLjcdDFWI3D0g3deF626DBKbojgnpggqUaM EoV4b93DHO7vc7ySgyLEFPTkBkkgGxdqqEXvJpWJ/aW9/Cww15I6iDEuwXLJFlFJ c0M8jphtU+WHm7WB75v2pJhxNxo0jKEaKOXJH7jtCfOHpzGEcuFfmXWIXlKO9UzH A8LsN2FIC3WfR8mtONxhP+HH39U4IBEODqGLYaM5A7iNpB8uJ8gs8z2ftaV8cS8c kcawdEIcVPr8bH2lFwe94LTX8y5YNhEkUBi/wfIkU2gTkFng1wVt3zNEg72G4D8e FqwuMG50TaTVK95XDi+EVBChXwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFMTmLeu5 kqZ1zFkdnhfs9RbLGilaMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvRUU3NDRBQ0FE NTVDMTFFQUEyMjRFMDI2QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAM BAIAATAGAwQAMf//MBUEAgACMA8DBgAkAkYAAAMFACQHVgAwDQYJKoZIhvcNAQEL BQADggEBABzjCbqNoldCxcPoRkIf2GDnEiAlZdaGmeD5tXK4MtwkjsQTS+88nmwG TiAl1g7qP3VWiDE2qrW+jC8z1PKmuTUe4ypTbWBhsM+vEPJUm3gHvO9LI3LZoExu Sxb779DOSAYNcMkP6MVz7qjri/ao1+Dmslp76Vtk0iw4fKHhic74ZgfLUBxd2UNS S6egJGhHiebg30qZpmsqwJFBUN+SCPvP3XvOQcHw4dmSuEm3tKIMhTaGfNV5TfUo GTG7USl4ZwFpqKnDGiCVc/OB9R4LwnitxRQhlWb4055JybLj7R1bN7NqxoHE7vWv RfSg0d81mVxeqtqgIrrqUaLdjnR2T1w= -----END CERTIFICATE-----Generated at Mon Mar 2 17:40:56 2026 by rpki-client